β βWhite Rabbitβ Ransomware May Be New FIN8 Tool β
π Read
via "Threat Post".
It's a double-extortion play that uses the command-line password βKissMeβ to hide its nasty acts and adorns its ransom note with cutesy ASCII bunny art.π Read
via "Threat Post".
β Serious Security: Apple Safari leaks private data via database API β what you need to know β
π Read
via "Naked Security".
There's a tiny data leakage bug in the WebKit browser engine... but it could act as a "supercookie" identifier for your browsingπ Read
via "Naked Security".
Naked Security
Serious Security: Apple Safari leaks private data via database API β what you need to know
Thereβs a tiny data leakage bug in the WebKit browser engineβ¦ but it could act as a βsupercookieβ identifier for your browsing
β Romance scammer who targeted 670 women gets 28 months in jail β
π Read
via "Naked Security".
Found love online? Sending them money? Friends and family warning you it could be a scam? Don't be too quick to dismiss their concerns...π Read
via "Naked Security".
Naked Security
Romance scammer who targeted 670 women gets 28 months in jail
Found love online? Sending them money? Friends and family warning you it could be a scam? Donβt be too quick to dismiss their concernsβ¦
π΄ US Search for Vulnerabilities Drives 10x Increase in Bug Reports π΄
π Read
via "Dark Reading".
Cross-site scripting and broken access controls continued to be the top classes of vulnerabilities researchers discovered, according to Bugcrowd's annual vulnerability report.π Read
via "Dark Reading".
Dark Reading
US Search for Vulnerabilities Drives 10x Increase in Bug Reports
Cross-site scripting and broken access controls continued to be the top classes of vulnerabilities researchers discovered, according to Bugcrowd's annual vulnerability report.
βΌ CVE-2021-41807 βΌ
π Read
via "National Vulnerability Database".
Lack of rate limiting in M-Files Server and M-Files Web products with versions before 21.12.10873.0 in certain type of user accounts allows unlimited amount of attempts and therefore makes brute-forcing login accounts easier.π Read
via "National Vulnerability Database".
βΌ CVE-2022-0125 βΌ
π Read
via "National Vulnerability Database".
An issue has been discovered in GitLab affecting all versions starting from 12.0 before 14.4.5, all versions starting from 14.5.0 before 14.5.3, all versions starting from 14.6.0 before 14.6.2. GitLab was not verifying that a maintainer of a project had the right access to import members from a target project.π Read
via "National Vulnerability Database".
βΌ CVE-2020-14110 βΌ
π Read
via "National Vulnerability Database".
AX3600 router sensitive information leaked.There is an unauthorized interface through luci to obtain sensitive information and log in to the web background.π Read
via "National Vulnerability Database".
βΌ CVE-2022-0232 βΌ
π Read
via "National Vulnerability Database".
The User Registration, Login & Landing Pages WordPress plugin is vulnerable to Stored Cross-Site Scripting due to insufficient escaping via the loader_text parameter found in the ~/includes/templates/landing-page.php file which allows attackers with administrative user access to inject arbitrary web scripts, in versions up to and including 1.2.7. This affects multi-site installations where unfiltered_html is disabled for administrators, and sites where unfiltered_html is disabled.π Read
via "National Vulnerability Database".
βΌ CVE-2022-0093 βΌ
π Read
via "National Vulnerability Database".
An issue has been discovered affecting GitLab versions prior to 14.4.5, between 14.5.0 and 14.5.3, and between 14.6.0 and 14.6.1. GitLab allows a user with an expired password to access sensitive information through RSS feeds.π Read
via "National Vulnerability Database".
βΌ CVE-2021-34406 βΌ
π Read
via "National Vulnerability Database".
NVIDIA Tegra kernel driver contains a vulnerability in NVHost, where a specific race condition can lead to a null pointer dereference, which may lead to a system reboot.π Read
via "National Vulnerability Database".
βΌ CVE-2021-46005 βΌ
π Read
via "National Vulnerability Database".
Sourcecodester Car Rental Management System 1.0 is vulnerable to Cross Site Scripting (XSS) via vehicalorcview parameter.π Read
via "National Vulnerability Database".
βΌ CVE-2021-34401 βΌ
π Read
via "National Vulnerability Database".
NVIDIA Linux kernel distributions contain a vulnerability in nvmap NVGPU_IOCTL_CHANNEL_SET_ERROR_NOTIFIER, where improper access control may lead to code execution, compromised integrity, or denial of service.π Read
via "National Vulnerability Database".
βΌ CVE-2021-41809 βΌ
π Read
via "National Vulnerability Database".
SSRF vulnerability in M-Files Server products with versions before 22.1.11017.1, in a preview function allowed making queries from the server with certain document types referencing external entities.π Read
via "National Vulnerability Database".
βΌ CVE-2022-0090 βΌ
π Read
via "National Vulnerability Database".
An issue has been discovered affecting GitLab versions prior to 14.4.5, between 14.5.0 and 14.5.3, and between 14.6.0 and 14.6.1. GitLab is configured in a way that it doesn't ignore replacement references with git sub-commands, allowing a malicious user to spoof the contents of their commits in the UI.π Read
via "National Vulnerability Database".
βΌ CVE-2022-0172 βΌ
π Read
via "National Vulnerability Database".
An issue has been discovered in GitLab CE/EE affecting all versions starting with 12.3. Under certain conditions it was possible to bypass the IP restriction for public projects through GraphQL allowing unauthorised users to read titles of issues, merge requests and milestones.π Read
via "National Vulnerability Database".
βΌ CVE-2021-46012 βΌ
π Read
via "National Vulnerability Database".
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA.π Read
via "National Vulnerability Database".
βΌ CVE-2022-0236 βΌ
π Read
via "National Vulnerability Database".
The WP Import Export WordPress plugin (both free and premium versions) is vulnerable to unauthenticated sensitive data disclosure due to a missing capability check on the download function wpie_process_file_download found in the ~/includes/classes/class-wpie-general.php file. This made it possible for unauthenticated attackers to download any imported or exported information from a vulnerable site which can contain sensitive information like user data. This affects versions up to, and including, 3.9.15.π Read
via "National Vulnerability Database".
βΌ CVE-2021-4083 βΌ
π Read
via "National Vulnerability Database".
A read-after-free memory flaw was found in the Linux kernel's garbage collection for Unix domain socket file handlers in the way users call close() and fget() simultaneously and can potentially trigger a race condition. This flaw allows a local user to crash the system or escalate their privileges on the system. This flaw affects Linux kernel versions prior to 5.16-rc4.π Read
via "National Vulnerability Database".
βΌ CVE-2022-0151 βΌ
π Read
via "National Vulnerability Database".
An issue has been discovered in GitLab affecting all versions starting from 12.10 before 14.4.5, all versions starting from 14.5.0 before 14.5.3, all versions starting from 14.6.0 before 14.6.2. GitLab was not correctly handling requests to delete existing packages which could result in a Denial of Service under specific conditions.π Read
via "National Vulnerability Database".
βΌ CVE-2022-0210 βΌ
π Read
via "National Vulnerability Database".
The Random Banner WordPress plugin is vulnerable to Stored Cross-Site Scripting due to insufficient escaping via the category parameter found in the ~/include/models/model.php file which allowed attackers with administrative user access to inject arbitrary web scripts, in versions up to and including 4.1.4. This affects multi-site installations where unfiltered_html is disabled for administrators, and sites where unfiltered_html is disabled.π Read
via "National Vulnerability Database".
βΌ CVE-2022-22690 βΌ
π Read
via "National Vulnerability Database".
Within the Umbraco CMS, a configuration element named "UmbracoApplicationUrl" (or just "ApplicationUrl") is used whenever application code needs to build a URL pointing back to the site. For example, when a user resets their password and the application builds a password reset URL or when the administrator invites users to the site. For Umbraco versions less than 9.2.0, if the Application URL is not specifically configured, the attacker can manipulate this value and store it persistently affecting all users for components where the "UmbracoApplicationUrl" is used. For example, the attacker is able to change the URL users receive when resetting their password so that it points to the attackers server, when the user follows this link the reset token can be intercepted by the attacker resulting in account takeover.π Read
via "National Vulnerability Database".